CVE-2025-26874
WordPress MemberSpace plugin <= 2.1.13 - Reflected Cross Site Scripting (XSS) vulnerability
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in memberspace MemberSpace memberspace allows Reflected XSS.This issue affects MemberSpace: from n/a through <= 2.1.13.
| CWE | CWE-79 |
| Vendor | memberspace |
| Product | memberspace |
| Published | Mar 27, 2025 |
| Last Updated | Apr 1, 2026 |
Stay Ahead of the Next One
Get instant alerts for memberspace memberspace
Be the first to know when new unknown vulnerabilities affecting memberspace memberspace are published — delivered to Slack, Telegram or Discord.
Get Free Alerts →
Free · No credit card · 60 sec setup
Affected Versions
memberspace / MemberSpace
0 ≤ 2.1.13
References
Credits
João Pedro S Alcântara (Kinorth) | Patchstack Bug Bounty Program